CVE-2025-31222

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.7.6 watchOS versions prior to 11.5 iOS versions prior to 18.5 iPadOS versions prior to 18.5 tvOS versions prior to 18.5 visionOS versions prior to 2.5 macOS Sequoia versions prior to 15.5

Description The issue relates to insufficient access control within the mDNSResponder daemon. Exploitation may allow an attacker to elevate their privileges. The vulnerability allows for local network eavesdropping and device discovery without authentication. An exploit chain involving mDNSResponder, traceroute6, libinfo, and an integer overflow can lead to root access. A new libmalloc “region-trailer” move and PAC bypass were implemented to address the issue.

Recommendations Update macOS to version 13.7.6 or later. Update watchOS to version 11.5 or later. Update iOS to version 18.5 or later. Update iPadOS to version 18.5 or later. Update tvOS to version 18.5 or later. Update visionOS to version 2.5 or later. Update macOS Sequoia to version 15.5 or later.